Comms log

Magnifying glass
Reset
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Date
Name
Topics
2.3.23
2.3.23

Delay to Cipher Suites Amendment

If you're not the technical contact at your company please forward this email on.

Please note - the below amendment will only potentially impact businesses integrated with Judopay directly.  

Due to several customer requests we have decided to delay the Cipher Suites amendment 'til the 1 June 2023, to allow more time for merchants to make the necessary changes.

As part of our commitment to security, we're releasing a technical update which will impact some businesses using our REST APIs, Merchant Portal and Web Payments.

From 1 June 2023, we're removing support for older security protocols that are used for connecting to our systems. As with all technology, certain protocols become outdated. This removal is part of our commitment to continue providing you with a secure and reliable service, both for you and your customers.

Action needed

This update will only impact the 4 cipher suites listed below. The remaining cipher suites permitted after 1 June 2023 (also listed below) should be compatible with all modern systems.

In most cases, no action should be required.

To check whether you need to make any changes please do the following:

  • If you've integrated with Judopay APIs, check to ensure your system supports one or more of the permitted cipher suites.
  • If you're running older, legacy browsers you may need to upgrade your systems to be compatible with these changes. In particular, Internet Explorer 11 on Windows 8 or lower, and Safari 8 or lower may be affected.
  • You can check which cipher suites are supported by your browser here.

Cipher suites no longer permitted

(after 1 June 2023)

  • TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
  • TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

Cipher suites being continued

  • TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
  • TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
  • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
  • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Cipher Suites Amendment

Delay to Cipher Suites Amendment

If you're not the technical contact at your company please forward this email on.

Please note - the below amendment will only potentially impact businesses integrated with Judopay directly.  

Due to several customer requests we have decided to delay the Cipher Suites amendment 'til the 1 June 2023, to allow more time for merchants to make the necessary changes.

As part of our commitment to security, we're releasing a technical update which will impact some businesses using our REST APIs, Merchant Portal and Web Payments.

From 1 June 2023, we're removing support for older security protocols that are used for connecting to our systems. As with all technology, certain protocols become outdated. This removal is part of our commitment to continue providing you with a secure and reliable service, both for you and your customers.

Action needed

This update will only impact the 4 cipher suites listed below. The remaining cipher suites permitted after 1 June 2023 (also listed below) should be compatible with all modern systems.

In most cases, no action should be required.

To check whether you need to make any changes please do the following:

  • If you've integrated with Judopay APIs, check to ensure your system supports one or more of the permitted cipher suites.
  • If you're running older, legacy browsers you may need to upgrade your systems to be compatible with these changes. In particular, Internet Explorer 11 on Windows 8 or lower, and Safari 8 or lower may be affected.
  • You can check which cipher suites are supported by your browser here.

Cipher suites no longer permitted

(after 1 June 2023)

  • TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
  • TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

Cipher suites being continued

  • TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
  • TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
  • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
  • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Security
8.2.23
8.2.23

As part of our commitment to security, we're releasing a technical update which will impact some businesses using our REST APIs, Merchant Portal and Web Payments.

If you're not the technical contact at your company please forward this email on.

From 5th March 2023, we're removing support for older security protocols that are used for connecting to our systems. As with all technology, certain protocols become outdated. This removal is part of our commitment to continue providing you with a secure and reliable service, both for you and your customers.

Action needed

This update will only impact the 4 cipher suites listed below. The remaining cipher suites permitted after March 5th 2023 (also listed below) should be compatible with all modern systems.

In most cases, no action should be required.

To check whether you need to make any changes please do the following:

  • If you've integrated with Judopay APIs, check to ensure your system supports one or more of the permitted cipher suites.
  • If you're running older, legacy browsers you may need to upgrade your systems to be compatible with these changes. In particular, Internet Explorer 11 on Windows 8 or lower, and Safari 8 or lower may be affected.
  • You can check which cipher suites are supported by your browser here.

Cipher suites no longer permitted

(after 5th March 2023)

  • TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
  • TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

Cipher suites being continued

  • TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
  • TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
  • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
  • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Cipher Suites Update

As part of our commitment to security, we're releasing a technical update which will impact some businesses using our REST APIs, Merchant Portal and Web Payments.

If you're not the technical contact at your company please forward this email on.

From 5th March 2023, we're removing support for older security protocols that are used for connecting to our systems. As with all technology, certain protocols become outdated. This removal is part of our commitment to continue providing you with a secure and reliable service, both for you and your customers.

Action needed

This update will only impact the 4 cipher suites listed below. The remaining cipher suites permitted after March 5th 2023 (also listed below) should be compatible with all modern systems.

In most cases, no action should be required.

To check whether you need to make any changes please do the following:

  • If you've integrated with Judopay APIs, check to ensure your system supports one or more of the permitted cipher suites.
  • If you're running older, legacy browsers you may need to upgrade your systems to be compatible with these changes. In particular, Internet Explorer 11 on Windows 8 or lower, and Safari 8 or lower may be affected.
  • You can check which cipher suites are supported by your browser here.

Cipher suites no longer permitted

(after 5th March 2023)

  • TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
  • TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

Cipher suites being continued

  • TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
  • TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
  • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
  • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Security
13.10.22
13.10.22

I wrote to you recently advising you that from 14th October 2022, 3D Secure v.1.0 will no longer be supported by Visa, American Express, Mastercard and others. If you have not already done so, I strongly advise you to enable 3D Secure v2.0 as soon as possible to avoid your payments failing.

To assess your 3DS2 readiness please check the guidance below in relation to how you manage your payments with Judopay: See guidance.

Action required regarding 3D Secure 2.0 upgrade.

I wrote to you recently advising you that from 14th October 2022, 3D Secure v.1.0 will no longer be supported by Visa, American Express, Mastercard and others. If you have not already done so, I strongly advise you to enable 3D Secure v2.0 as soon as possible to avoid your payments failing.

To assess your 3DS2 readiness please check the guidance below in relation to how you manage your payments with Judopay: See guidance.

3D Secure